Lucene search
+L

18 matches found

Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.12 views

PT-2026-52331

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A side-channel issue exists where an unprivileged application can attach a filter to TCP sockets to leak TCP sequence and acknowledgment numbers. This is achieved through the use of SO...

5.5CVSS6.1AI score0.00128EPSS
Exploits0References19
RedHat Linux
RedHat Linux
added 2026/04/22 12:32 a.m.11 views

kernel: kernel: Privilege escalation or denial of service via use-after-free in nf_tables_addchain()

A flaw was found in the Linux kernel. A local attacker with CAPNETADMIN capabilities, or remote packet traffic, could exploit a use-after-free vulnerability in the nftablesaddchain function's error handling. Successful exploitation could lead to a kernel crash, resulting in a Denial of Service Do...

7.8CVSS5.7AI score0.00788EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/03/19 5:43 p.m.6 views

kernel: refcount leak in ctnetlink_create_conntrack()

A memory leak problem was found in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c in the Linux Kernel. This issue may allow a local attacker with CAPNETADMIN privileges to cause a denial of service DoS attack due to a refcount overflow...

5.5CVSS6.9AI score0.00301EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/02/07 4:32 p.m.5 views

kernel: refcount leak in ctnetlink_create_conntrack()

A memory leak problem was found in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c in the Linux Kernel. This issue may allow a local attacker with CAPNETADMIN privileges to cause a denial of service DoS attack due to a refcount overflow...

5.5CVSS6.9AI score0.00301EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/01/25 8:13 a.m.8 views

kernel: xfrm: NULL pointer dereference in xfrm_update_ae_params()

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to directly dereference a NULL pointer in xfrmupdateaeparams, leading to a possible kernel crash and denial of service...

5.5CVSS6.6AI score0.00454EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.5 views

kernel: xfrm: out-of-bounds read of XFRMA_MTIMER_THRESH nlattr

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.6AI score0.00237EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:42 a.m.4 views

SUSE CVE-2012-6537

net/xfrm/xfrmuser.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAPNETADMIN capability...

1.9CVSS6AI score0.00376EPSS
Exploits0References6
OSV
OSV
added 2021/10/05 12:15 a.m.2 views

DEBIAN-CVE-2021-42008

The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access...

7.8CVSS6.6AI score0.01476EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2021/08/16 12:0 a.m.10 views

PT-2021-7360 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.13.13 Description: The issue is related to a slab out-of-bounds write in the decode data function of the drivers/net/hamradio/6pack.c component in the Linux kernel. This can be exploited to gain access to...

9.8CVSS7.7AI score0.93838EPSS
Exploits248References1514
RedHat Linux
RedHat Linux
added 2017/04/04 11:49 a.m.6 views

kernel: net: Out of bounds stack read in memcpy_fromiovec

A flaw was found in the Linux networking subsystem where a local attacker with CAPNETADMIN capabilities could cause an out-of-bounds memory access by creating a smaller-than-expected ICMP header and sending to its destination via sendto...

7.6CVSS6.8AI score0.02341EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/03/21 9:6 a.m.6 views

kernel: net: Out of bounds stack read in memcpy_fromiovec

A flaw was found in the Linux networking subsystem where a local attacker with CAPNETADMIN capabilities could cause an out-of-bounds memory access by creating a smaller-than-expected ICMP header and sending to its destination via sendto...

7.6CVSS6.8AI score0.02341EPSS
Exploits0References4
CNVD
CNVD
added 2015/02/11 12:0 a.m.3 views

Linux Kernel 'nft_flush_table' function local denial of service vulnerability

Linux is an open source computer operating system kernel. A local denial of service vulnerability exists in the Linux Kernel 'nftflushtable' function, which can be exploited by a local attacker with CAPNETADMIN to launch a denial of service attack...

6.3AI score
Exploits0References1
OSV
OSV
added 2013/12/09 6:55 p.m.2 views

DEBIAN-CVE-2013-6431

The fib6add function in net/ipv6/ip6fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging the CAPNETADMIN capability for an IPv6 SIOCADDRT ioctl call...

4.7CVSS5.5AI score0.00435EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2013/04/16 6:55 p.m.6 views

Kernel: xfrm_user information leaks copy_to_user_

net/xfrm/xfrmuser.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAPNETADMIN capability...

1.9CVSS6.7AI score0.00376EPSS
Exploits0References4
OSV
OSV
added 2013/03/15 8:55 p.m.4 views

DEBIAN-CVE-2012-6536

net/xfrm/xfrmuser.c in the Linux kernel before 3.6 does not verify that the actual Netlink message length is consistent with a certain header field, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability and providing a 1 new or 2...

2.1CVSS5.9AI score0.0037EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2011/09/12 7:40 p.m.6 views

kernel: nl80211: missing check for valid SSID size in scan operations

Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAPNETADMIN capability during scan operations with a long SSID value...

7.2CVSS7.2AI score0.00377EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.7 views

kernel: ipv4: netfilter: arp_tables: fix infoleak to userspace

net/ipv4/netfilter/arptables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

2.1CVSS7.1AI score0.00407EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/03/27 12:12 a.m.7 views

kernel: skfp_ioctl inverted logic flaw

The skfpioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFPCLRSTATS requests only when the CAPNETADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic"...

2.1CVSS6.1AI score0.00401EPSS
Exploits1References4
Rows per page
Query Builder